This Article  • Full text  • PDF  • Send to a friend  • Save in My Folder  • Save to citation manager  • Permissions  Citing Articles  • Citation map  • Citing articles on HighWire  • Citing articles on Web of Science (62)  • Contact me when this article is cited  Related Content  • Related letter  • Similar articles in JAMA  Topic Collections  • Informatics/ Internet in Medicine  • Internet  • Medical Practice  • Law and Medicine  • Alert me on articles by topic  Social Bookmarking   What's this?

Privacy, Quality, and Liability

James G. Hodge, Jr, JD, LLM; Lawrence O. Gostin, JD; Peter D. Jacobson, JD, MPH

JAMA. 1999;282:1466-1471.

Personally identifiable health information about individuals and general medical information is increasingly available in electronic form in health databases and through online networks. The proliferation of electronic data within the modern health information infrastructure presents significant benefits for medical providers and patients, including enhanced patient autonomy, improved clinical treatment, advances in health research and public health surveillance, and modern security techniques. However, it also presents new legal challenges in 3 interconnected areas: privacy of identifiable health information, reliability and quality of health data, and tort-based liability. Protecting health information privacy (by giving individuals control over health data without severely restricting warranted communal uses) directly improves the quality and reliability of health data (by encouraging individual uses of health services and communal uses of data), which diminishes tort-based liabilities (by reducing instances of medical malpractice or privacy invasions through improvements in the delivery of health care services resulting in part from better quality and reliability of clinical and research data). Following an analysis of the interconnectivity of these 3 areas and discussing existing and proposed health information privacy laws, recommendations for legal reform concerning health information privacy are presented. These include (1) recognizing identifiable health information as highly sensitive, (2) providing privacy safeguards based on fair information practices, (3) empowering patients with information and rights to consent to disclosure (4) limiting disclosures of health data absent consent, (5) incorporating industry-wide security protections, (6) establishing a national data protection authority, and (7) providing a national minimal level of privacy protections.

Author Affiliation: Georgetown University Law Center, Washington, DC (Messrs Hodge and Gostin) and the University of Michigan School of Public Health, Ann Arbor (Mr Jacobson).

CiteULike    Connotea    Del.icio.us    Digg    Reddit    Technorati    Twitter     What's this?

RELATED LETTER

Privacy of Electronic Medical Information
Bruce Wilder, James G. Hodge, Jr, Lawrence O. Gostin, and Peter D. Jacobson
JAMA. 2000;283(12):1564-1565.
EXTRACT | FULL TEXT  

THIS ARTICLE HAS BEEN CITED BY OTHER ARTICLES

Where's the Revolution? Digital Technology and Health Care in the Internet Age
Miller and West
Journal of Health Politics, Policy and Law 2009;34:261-284.
ABSTRACT  

Ethics in Public Health Research: Privacy and Public Health at Risk: Public Health Confidentiality in the Digital Age
Myers et al.
AJPH 2008;98:793-801.
ABSTRACT | FULL TEXT  

Promoting Regular Mammography Screening I. A Systematic Assessment of Validity in a Randomized Trial
del Junco et al.
JNCI J Natl Cancer Inst 2008;100:333-346.
ABSTRACT | FULL TEXT  

Patient consent principles and guidelines for e-consent: a New Zealand perspective
Galpottage and Norris
Health Informatics Journal 2005;11:5-18.
ABSTRACT  

Health Information Privacy and Public Health
Hodge
J Law Med Ethics 2003;31:663-671.
 

Privacy in Psychiatric Treatment: Threats and Responses
Appelbaum
Focus 2003;1:396-406.
ABSTRACT | FULL TEXT  

Development of a Clinical Data Warehouse for Hospital Infection Control
Wisniewski et al.
J Am Med Inform Assoc 2003;10:454-462.
ABSTRACT | FULL TEXT  

Development of a Clinical Data Warehouse for Hospital Infection Control
Wisniewski et al.
J. Am. Med. Inform. Assoc. 2003;10:454-462.
ABSTRACT | FULL TEXT  

Privacy in Psychiatric Treatment: Threats and Responses
Appelbaum
Am. J. Psychiatry 2002;159:1809-1818.
ABSTRACT | FULL TEXT  

Informational Privacy and the Public's Health: The Model State Public Health Privacy Act
Gostin et al.
AJPH 2001;91:1388-1392.
ABSTRACT | FULL TEXT  

Ethical and Methodological Issues in Pedigree Stroke Research
Worrall et al.
Stroke 2001;32:1242-1249.
ABSTRACT | FULL TEXT  

Privacy Protections for Cybercharts: An Update on the Law
Cantor
JAMA 2001;285:1767-1767.
FULL TEXT  

Public standards and patients' control: how to keep electronic medical records accessible but private Commentary: Open approaches to electronic patient records Commentary: A patient's viewpoint
Mandl et al.
BMJ 2001;322:283-287.
FULL TEXT  

E-Commerce in Health Care: Can it Improve Access and Lower Cost?
Corona and Jacobson
Policy Politics Nursing Practice 2001;2:58-63.
ABSTRACT  

Procedural and Methodological Issues in Telepsychiatry Research and Program Development
Frueh et al.
Psychiatr. Serv. 2000;51:1522-1527.
ABSTRACT | FULL TEXT  

Selection Bias From Requiring Patients to Give Consent to Examine Data for Health Services Research
Woolf et al.
Arch Fam Med 2000;9:1111-1118.
ABSTRACT | FULL TEXT  

Privacy of Electronic Medical Information
Wilder et al.
JAMA 2000;283:1564-1565.
FULL TEXT  

Threats to the Confidentiality of Medical Records--No Place to Hide
Appelbaum
JAMA 2000;283:795-797.
FULL TEXT